15 matches found
CVE-2026-28679
creationtimestamp| type| source ---|---|--- 2026-03-06 06:11:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgenpvtoos27 2026-03-06 08:09:47+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgeudrl2nt2h...
CVE-2023-28679
creationtimestamp| type| source ---|---|--- 2025-02-24 15:28:04+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5146...
CVE-2022-28679
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader 11.2.1.53537. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2024-28679
DedeCMS v5.7 was discovered to contain a cross-site scripting XSS vulnerability via Photo Collection...
CVE-2024-28679
DedeCMS v5.7 was discovered to contain a cross-site scripting XSS vulnerability via Photo Collection...
CVE-2024-28679
CVE-2024-28679 : DedeCMS v5.7 contains a cross-site scripting (XSS) vulnerability via the Photo Collection feature. The issue affects DedeCMS 5.7 (Photo Collection component) and is described as an XSS leading to script execution, with the CVSS base metrics indicating a Medium severity (6.1) and ...
CVE-2024-28679
DedeCMS v5.7 was discovered to contain a cross-site scripting XSS vulnerability via Photo Collection...
CVE-2024-28679
DedeCMS v5.7 was discovered to contain a cross-site scripting XSS vulnerability via Photo Collection...
CVE-2023-28679
Jenkins Mashup Portlets Plugin 1.1.2 and earlier provides the "Generic JS Portlet" feature that lets a user populate a portlet using a custom JavaScript expression, resulting in a stored cross-site scripting XSS vulnerability exploitable by authenticated attackers with Overall/Read permission...
CVE-2023-28679
Jenkins Mashup Portlets Plugin 1.1.2 and earlier provides the "Generic JS Portlet" feature that lets a user populate a portlet using a custom JavaScript expression, resulting in a stored cross-site scripting XSS vulnerability exploitable by authenticated attackers with Overall/Read permission...
CVE-2023-28679
Summary: CVE-2023-28679 affects Jenkins Mashup Portlets Plugin (versions ≤ 1.1.2). The vulnerability is a stored cross-site scripting (XSS) flaw introduced by the Generic JS Portlet feature, which allows a user to populate a portlet with a custom JavaScript expression. The issue can be exploited ...
CVE-2022-28679
creationtimestamp| type| source ---|---|--- 2022-07-18 22:39:51+00:00| seen| https://t.me/cibsecurity/46491...
CVE-2022-28679
CVE-2022-28679 affects Foxit PDF Reader 11.2.1.53537. The vulnerability is in the handling of Annotation objects and stems from not validating the existence of an object before performing operations, enabling remote code execution in the current process when a user opens a malicious file or visit...
KLA12530 Multiple vulnerabilities in Foxit Reader
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability can be exploited remotely ...
CVE-2020-28679
Product : Zoho ManageEngine Applications Manager (showReports module). Vulnerability : SQL injection via crafted request in the showReports module before build 14550. Impact : authenticated attacker can exploit to inject SQL; CVSS 3.1/8.8 (HIGH) indicates high impact with network access and low p...